Details
-
Bug
-
Status: Open (View Workflow)
-
Critical
-
Resolution: Unresolved
Description
CheckMarx stopped working this afternoon. It had been working in the morning.
Some Plugins where updated during this time period by CheckMarx (8.90.1) was not.
step([$class : 'CxScanBuilder', avoidDuplicateProjectScans : false, comment : "Pipeline Scan", credentialsId : 'checkmarx', excludeFolders : '', exclusionsSetting : 'global', failBuildOnNewResults : true, failBuildOnNewSeverity : 'HIGH', fullScanCycle : 10, generatePdfReport : true, groupId : 'XXXXX', osaArchiveIncludePatterns : '*.zip, *.war, *.ear, *.tgz', osaInstallBeforeScan : false, preset : '100003', projectName : "${serviceName}${CHECKMARX_PROJECT_TYPE}", sastEnabled : true, sourceEncoding : '1', vulnerabilityThresholdResult : 'FAILURE' ])
java.lang.SecurityException: Rejected: com.cx.restclient.dto.ScanResults; see https://jenkins.io/redirect/class-filter/ at hudson.remoting.ClassFilter.check(ClassFilter.java:77) at hudson.remoting.MultiClassLoaderSerializer$Input.resolveClass(MultiClassLoaderSerializer.java:135) at java.io.ObjectInputStream.readNonProxyDesc(ObjectInputStream.java:1867) at java.io.ObjectInputStream.readClassDesc(ObjectInputStream.java:1750) at java.io.ObjectInputStream.readOrdinaryObject(ObjectInputStream.java:2041) at java.io.ObjectInputStream.readObject0(ObjectInputStream.java:1572) at java.io.ObjectInputStream.readObject(ObjectInputStream.java:430) at hudson.remoting.UserRequest.deserialize(UserRequest.java:291) at hudson.remoting.UserRequest$NormalResponse.retrieve(UserRequest.java:326) at hudson.remoting.Channel.call(Channel.java:955) Caused: java.io.IOException: Failed to deserialize response to UserRequest:com.checkmarx.jenkins.CxScanCallable@40fec119 at hudson.remoting.Channel.call(Channel.java:963) at hudson.FilePath.act(FilePath.java:1072) at hudson.FilePath.act(FilePath.java:1061) at com.checkmarx.jenkins.CxScanBuilder.perform(CxScanBuilder.java:711) at org.jenkinsci.plugins.workflow.steps.CoreStep$Execution.run(CoreStep.java:80) at org.jenkinsci.plugins.workflow.steps.CoreStep$Execution.run(CoreStep.java:67) at org.jenkinsci.plugins.workflow.steps.SynchronousNonBlockingStepExecution.lambda$start$0(SynchronousNonBlockingStepExecution.java:47) at java.util.concurrent.Executors$RunnableAdapter.call(Executors.java:511) at java.util.concurrent.FutureTask.run(FutureTask.java:266) at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1149) at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:624) at java.lang.Thread.run(Thread.java:748)
Attachments
Issue Links
- relates to
-
JENKINS-47736
JEP-200: Switch Remoting/XStream blacklist to a whitelist
-
- Resolved
-
Activity
Nilesh Pawar
added a comment - I have upgraded chekmarx to 8.90.3 and my build got succeed but again it started failing because of same reason.
here is the log,
FATAL: java.lang.RuntimeException: Failed to serialize hudson.model.Project#builders for class hudson.model.FreeStyleProject*17:01:44* java.lang.UnsupportedOperationException: Refusing to marshal java.io.PrintStream for security reasons; see
https://jenkins.io/redirect/class-filter/
17:01:44 at hudson.util.XStream2$BlacklistedTypesConverter.marshal(XStream2.java:543)17:01:44 at com.thoughtworks.xstream.core.AbstractReferenceMarshaller.convert(AbstractReferenceMarshaller.java:69)17:01:44 at com.thoughtworks.xstream.core.TreeMarshaller.convertAnother(TreeMarshaller.java:58)17:01:44 at com.thoughtworks.xstream.core.AbstractReferenceMarshaller$1.convertAnother(AbstractReferenceMarshaller.java:84)17:01:44 at hudson.util.RobustReflectionConverter.marshallField(RobustReflectionConverter.java:265)17:01:44 at hudson.util.RobustReflectionConverter$2.writeField(RobustReflectionConverter.java:252)17:01:44 Caused: java.lang.RuntimeException: Failed to serialize com.checkmarx.jenkins.CxLoggerAdapter#log for class com.checkmarx.jenkins.CxLoggerAdapter*17:01:44* at hudson.util.RobustReflectionConverter$2.writeField(RobustReflectionConverter.java:256)17:01:44 at hudson.util.RobustReflectionConverter$2.visit(RobustReflectionConverter.java:224)17:01:44 at com.thoughtworks.xstream.converters.reflection.PureJavaReflectionProvider.visitSerializableFields(PureJavaReflectionProvider.java:138)17:01:44 at hudson.util.RobustReflectionConverter.doMarshal(RobustReflectionConverter.java:209)17:01:44 at hudson.util.RobustReflectionConverter.marshal(RobustReflectionConverter.java:150)17:01:44 at com.thoughtworks.xstream.core.AbstractReferenceMarshaller.convert(AbstractReferenceMarshaller.java:69)17:01:44 at com.thoughtworks.xstream.core.TreeMarshaller.convertAnother(TreeMarshaller.java:58)17:01:44 at com.thoughtworks.xstream.core.AbstractReferenceMarshaller$1.convertAnother(AbstractReferenceMarshaller.java:84)17:01:44 at hudson.util.RobustReflectionConverter.marshallField(RobustReflectionConverter.java:265)17:01:44 at hudson.util.RobustReflectionConverter$2.writeField(RobustReflectionConverter.java:252)17:01:44 Caused: java.lang.RuntimeException: Failed to serialize com.checkmarx.jenkins.CxScanBuilder#log for class com.checkmarx.jenkins.CxScanBuilder*17:01:44* at hudson.util.RobustReflectionConverter$2.writeField(RobustReflectionConverter.java:256)17:01:44 at hudson.util.RobustReflectionConverter$2.visit(RobustReflectionConverter.java:224)17:01:44 at com.thoughtworks.xstream.converters.reflection.PureJavaReflectionProvider.visitSerializableFields(PureJavaReflectionProvider.java:138)17:01:44 at hudson.util.RobustReflectionConverter.doMarshal(RobustReflectionConverter.java:209)17:01:44 at hudson.util.RobustReflectionConverter.marshal(RobustReflectionConverter.java:150)17:01:44 at com.thoughtworks.xstream.core.AbstractReferenceMarshaller.convert(AbstractReferenceMarshaller.java:69)17:01:44 at com.thoughtworks.xstream.core.TreeMarshaller.convertAnother(TreeMarshaller.java:58)17:01:44 at com.thoughtworks.xstream.core.TreeMarshaller.convertAnother(TreeMarshaller.java:43)17:01:44 at com.thoughtworks.xstream.core.AbstractReferenceMarshaller$1.convertAnother(AbstractReferenceMarshaller.java:88)17:01:44 at com.thoughtworks.xstream.converters.collections.AbstractCollectionConverter.writeItem(AbstractCollectionConverter.java:64)17:01:44 at hudson.util.DescribableList$ConverterImpl.marshal(DescribableList.java:269)17:01:44 at com.thoughtworks.xstream.core.AbstractReferenceMarshaller.convert(AbstractReferenceMarshaller.java:69)17:01:44 at com.thoughtworks.xstream.core.TreeMarshaller.convertAnother(TreeMarshaller.java:58)17:01:44 at com.thoughtworks.xstream.core.AbstractReferenceMarshaller$1.convertAnother(AbstractReferenceMarshaller.java:84)17:01:44 at hudson.util.RobustReflectionConverter.marshallField(RobustReflectionConverter.java:265)17:01:44 at hudson.util.RobustReflectionConverter$2.writeField(RobustReflectionConverter.java:252)17:01:44 Caused: java.lang.RuntimeException: Failed to serialize hudson.model.Project#builders for class hudson.model.FreeStyleProject*17:01:44* at hudson.util.RobustReflectionConverter$2.writeField(RobustReflectionConverter.java:256)17:01:44 at hudson.util.RobustReflectionConverter$2.visit(RobustReflectionConverter.java:224)17:01:44 at com.thoughtworks.xstream.converters.reflection.PureJavaReflectionProvider.visitSerializableFields(PureJavaReflectionProvider.java:138)17:01:44 at hudson.util.RobustReflectionConverter.doMarshal(RobustReflectionConverter.java:209)17:01:44 at hudson.util.RobustReflectionConverter.marshal(RobustReflectionConverter.java:150)17:01:44 at com.thoughtworks.xstream.core.AbstractReferenceMarshaller.convert(AbstractReferenceMarshaller.java:69)17:01:44 at com.thoughtworks.xstream.core.TreeMarshaller.convertAnother(TreeMarshaller.java:58)17:01:44 at com.thoughtworks.xstream.core.TreeMarshaller.convertAnother(TreeMarshaller.java:43)17:01:44 at com.thoughtworks.xstream.core.TreeMarshaller.start(TreeMarshaller.java:82)17:01:44 at com.thoughtworks.xstream.core.AbstractTreeMarshallingStrategy.marshal(AbstractTreeMarshallingStrategy.java:37)17:01:44 at com.thoughtworks.xstream.XStream.marshal(XStream.java:1026)17:01:44 at com.thoughtworks.xstream.XStream.marshal(XStream.java:1015)17:01:44 at com.thoughtworks.xstream.XStream.toXML(XStream.java:988)17:01:44 at hudson.XmlFile.write(XmlFile.java:193)17:01:44 Caused: java.io.IOException*17:01:44* at hudson.XmlFile.write(XmlFile.java:200)17:01:44 at hudson.model.AbstractItem.save(AbstractItem.java:597)17:01:44 at hudson.model.Job.save(Job.java:191)17:01:44 at hudson.model.AbstractProject.save(AbstractProject.java:289)17:01:44 at jenkins.model.ParameterizedJobMixIn$ParameterizedJob.makeDisabled(ParameterizedJobMixIn.java:484)17:01:44 at hudson.model.AbstractProject.performDelete(AbstractProject.java:354)17:01:44 at hudson.model.AbstractItem.delete(AbstractItem.java:772)17:01:44 at hudson.model.Job.delete(Job.java:677)17:01:44 at javaposse.jobdsl.plugin.ExecuteDslScripts.updateGeneratedJobs(ExecuteDslScripts.java:429)17:01:44 at javaposse.jobdsl.plugin.ExecuteDslScripts.perform(ExecuteDslScripts.java:330)17:01:44 at hudson.tasks.BuildStepCompatibilityLayer.perform(BuildStepCompatibilityLayer.java:81)17:01:44 at hudson.tasks.BuildStepMonitor$1.perform(BuildStepMonitor.java:20)17:01:44 at hudson.model.AbstractBuild$AbstractBuildExecution.perform(AbstractBuild.java:744)17:01:44 at hudson.model.Build$BuildExecution.build(Build.java:206)17:01:44 at hudson.model.Build$BuildExecution.doRun(Build.java:163)17:01:44 at hudson.model.AbstractBuild$AbstractBuildExecution.run(AbstractBuild.java:504)17:01:44 at hudson.model.Run.execute(Run.java:1794)17:01:44 at hudson.model.FreeStyleBuild.run(FreeStyleBuild.java:43)17:01:44 at hudson.model.ResourceController.execute(ResourceController.java:97)17:01:44 at hudson.model.Executor.run(Executor.java:429)
Nilesh Pawar
added a comment - sternlir
I have upgraded chekmarx to 8.90.3 and my build got succeed but again it started failing because of same reason.
here is the log,
FATAL: java.lang.RuntimeException: Failed to serialize hudson.model.Project#builders for class hudson.model.FreeStyleProject*17:01:44* java.lang.UnsupportedOperationException: Refusing to marshal java.io.PrintStream for security reasons; see
https://jenkins.io/redirect/class-filter/
17:01:44 at hudson.util.XStream2$BlacklistedTypesConverter.marshal(XStream2.java:543) 17:01:44 at com.thoughtworks.xstream.core.AbstractReferenceMarshaller.convert(AbstractReferenceMarshaller.java:69) 17:01:44 at com.thoughtworks.xstream.core.TreeMarshaller.convertAnother(TreeMarshaller.java:58) 17:01:44 at com.thoughtworks.xstream.core.AbstractReferenceMarshaller$1.convertAnother(AbstractReferenceMarshaller.java:84) 17:01:44 at hudson.util.RobustReflectionConverter.marshallField(RobustReflectionConverter.java:265) 17:01:44 at hudson.util.RobustReflectionConverter$2.writeField(RobustReflectionConverter.java:252) 17:01:44 Caused: java.lang.RuntimeException: Failed to serialize com.checkmarx.jenkins.CxLoggerAdapter#log for class com.checkmarx.jenkins.CxLoggerAdapter*17:01:44* at hudson.util.RobustReflectionConverter$2.writeField(RobustReflectionConverter.java:256) 17:01:44 at hudson.util.RobustReflectionConverter$2.visit(RobustReflectionConverter.java:224) 17:01:44 at com.thoughtworks.xstream.converters.reflection.PureJavaReflectionProvider.visitSerializableFields(PureJavaReflectionProvider.java:138) 17:01:44 at hudson.util.RobustReflectionConverter.doMarshal(RobustReflectionConverter.java:209) 17:01:44 at hudson.util.RobustReflectionConverter.marshal(RobustReflectionConverter.java:150) 17:01:44 at com.thoughtworks.xstream.core.AbstractReferenceMarshaller.convert(AbstractReferenceMarshaller.java:69) 17:01:44 at com.thoughtworks.xstream.core.TreeMarshaller.convertAnother(TreeMarshaller.java:58) 17:01:44 at com.thoughtworks.xstream.core.AbstractReferenceMarshaller$1.convertAnother(AbstractReferenceMarshaller.java:84) 17:01:44 at hudson.util.RobustReflectionConverter.marshallField(RobustReflectionConverter.java:265) 17:01:44 at hudson.util.RobustReflectionConverter$2.writeField(RobustReflectionConverter.java:252) 17:01:44 Caused: java.lang.RuntimeException: Failed to serialize com.checkmarx.jenkins.CxScanBuilder#log for class com.checkmarx.jenkins.CxScanBuilder*17:01:44* at hudson.util.RobustReflectionConverter$2.writeField(RobustReflectionConverter.java:256) 17:01:44 at hudson.util.RobustReflectionConverter$2.visit(RobustReflectionConverter.java:224) 17:01:44 at com.thoughtworks.xstream.converters.reflection.PureJavaReflectionProvider.visitSerializableFields(PureJavaReflectionProvider.java:138) 17:01:44 at hudson.util.RobustReflectionConverter.doMarshal(RobustReflectionConverter.java:209) 17:01:44 at hudson.util.RobustReflectionConverter.marshal(RobustReflectionConverter.java:150) 17:01:44 at com.thoughtworks.xstream.core.AbstractReferenceMarshaller.convert(AbstractReferenceMarshaller.java:69) 17:01:44 at com.thoughtworks.xstream.core.TreeMarshaller.convertAnother(TreeMarshaller.java:58) 17:01:44 at com.thoughtworks.xstream.core.TreeMarshaller.convertAnother(TreeMarshaller.java:43) 17:01:44 at com.thoughtworks.xstream.core.AbstractReferenceMarshaller$1.convertAnother(AbstractReferenceMarshaller.java:88) 17:01:44 at com.thoughtworks.xstream.converters.collections.AbstractCollectionConverter.writeItem(AbstractCollectionConverter.java:64) 17:01:44 at hudson.util.DescribableList$ConverterImpl.marshal(DescribableList.java:269) 17:01:44 at com.thoughtworks.xstream.core.AbstractReferenceMarshaller.convert(AbstractReferenceMarshaller.java:69) 17:01:44 at com.thoughtworks.xstream.core.TreeMarshaller.convertAnother(TreeMarshaller.java:58) 17:01:44 at com.thoughtworks.xstream.core.AbstractReferenceMarshaller$1.convertAnother(AbstractReferenceMarshaller.java:84) 17:01:44 at hudson.util.RobustReflectionConverter.marshallField(RobustReflectionConverter.java:265) 17:01:44 at hudson.util.RobustReflectionConverter$2.writeField(RobustReflectionConverter.java:252) 17:01:44 Caused: java.lang.RuntimeException: Failed to serialize hudson.model.Project#builders for class hudson.model.FreeStyleProject*17:01:44* at hudson.util.RobustReflectionConverter$2.writeField(RobustReflectionConverter.java:256) 17:01:44 at hudson.util.RobustReflectionConverter$2.visit(RobustReflectionConverter.java:224) 17:01:44 at com.thoughtworks.xstream.converters.reflection.PureJavaReflectionProvider.visitSerializableFields(PureJavaReflectionProvider.java:138) 17:01:44 at hudson.util.RobustReflectionConverter.doMarshal(RobustReflectionConverter.java:209) 17:01:44 at hudson.util.RobustReflectionConverter.marshal(RobustReflectionConverter.java:150) 17:01:44 at com.thoughtworks.xstream.core.AbstractReferenceMarshaller.convert(AbstractReferenceMarshaller.java:69) 17:01:44 at com.thoughtworks.xstream.core.TreeMarshaller.convertAnother(TreeMarshaller.java:58) 17:01:44 at com.thoughtworks.xstream.core.TreeMarshaller.convertAnother(TreeMarshaller.java:43) 17:01:44 at com.thoughtworks.xstream.core.TreeMarshaller.start(TreeMarshaller.java:82) 17:01:44 at com.thoughtworks.xstream.core.AbstractTreeMarshallingStrategy.marshal(AbstractTreeMarshallingStrategy.java:37) 17:01:44 at com.thoughtworks.xstream.XStream.marshal(XStream.java:1026) 17:01:44 at com.thoughtworks.xstream.XStream.marshal(XStream.java:1015) 17:01:44 at com.thoughtworks.xstream.XStream.toXML(XStream.java:988) 17:01:44 at hudson.XmlFile.write(XmlFile.java:193) 17:01:44 Caused: java.io.IOException*17:01:44* at hudson.XmlFile.write(XmlFile.java:200) 17:01:44 at hudson.model.AbstractItem.save(AbstractItem.java:597) 17:01:44 at hudson.model.Job.save(Job.java:191) 17:01:44 at hudson.model.AbstractProject.save(AbstractProject.java:289) 17:01:44 at jenkins.model.ParameterizedJobMixIn$ParameterizedJob.makeDisabled(ParameterizedJobMixIn.java:484) 17:01:44 at hudson.model.AbstractProject.performDelete(AbstractProject.java:354) 17:01:44 at hudson.model.AbstractItem.delete(AbstractItem.java:772) 17:01:44 at hudson.model.Job.delete(Job.java:677) 17:01:44 at javaposse.jobdsl.plugin.ExecuteDslScripts.updateGeneratedJobs(ExecuteDslScripts.java:429) 17:01:44 at javaposse.jobdsl.plugin.ExecuteDslScripts.perform(ExecuteDslScripts.java:330) 17:01:44 at hudson.tasks.BuildStepCompatibilityLayer.perform(BuildStepCompatibilityLayer.java:81) 17:01:44 at hudson.tasks.BuildStepMonitor$1.perform(BuildStepMonitor.java:20) 17:01:44 at hudson.model.AbstractBuild$AbstractBuildExecution.perform(AbstractBuild.java:744) 17:01:44 at hudson.model.Build$BuildExecution.build(Build.java:206) 17:01:44 at hudson.model.Build$BuildExecution.doRun(Build.java:163) 17:01:44 at hudson.model.AbstractBuild$AbstractBuildExecution.run(AbstractBuild.java:504) 17:01:44 at hudson.model.Run.execute(Run.java:1794) 17:01:44 at hudson.model.FreeStyleBuild.run(FreeStyleBuild.java:43) 17:01:44 at hudson.model.ResourceController.execute(ResourceController.java:97) 17:01:44 at hudson.model.Executor.run(Executor.java:429)
Liran Stern
added a comment - Hello
We have just uploaded 8.90.4 which should fix an additional case of "Failed to serialize...". We hope this will fix the problem you are facing. It should be on the site within 1-2 days.
I'd appreciate if you share your experience with that plugin version.
I apologize for the inconvenience, Liran
Liran Stern
added a comment - Hello
We have just uploaded 8.90.4 which should fix an additional case of "Failed to serialize...". We hope this will fix the problem you are facing. It should be on the site within 1-2 days.
I'd appreciate if you share your experience with that plugin version.
I apologize for the inconvenience, Liran 
Sai Kiran Challa
added a comment - That worked for me. Thank you very much for fixing it. We had a successful build for the first time. 
Sai Kiran Challa
added a comment - That worked for me. Thank you very much for fixing it. We had a successful build for the first time. 
Matt Henry
added a comment - Hello, I am running into this error, Jenkins 2.303.3 and plugin version 2021.4.1:
java.lang.SecurityException: Rejected: org.apache.http.HttpHost; see https://jenkins.io/redirect/class-filter/ at hudson.remoting.ClassFilter.check(ClassFilter.java:79) at hudson.remoting.MultiClassLoaderSerializer$Input.resolveClass(MultiClassLoaderSerializer.java:133) at java.base/java.io.ObjectInputStream.readNonProxyDesc(ObjectInputStream.java:1995) at java.base/java.io.ObjectInputStream.readClassDesc(ObjectInputStream.java:1862) at java.base/java.io.ObjectInputStream.readOrdinaryObject(ObjectInputStream.java:2169) at java.base/java.io.ObjectInputStream.readObject0(ObjectInputStream.java:1679) at java.base/java.io.ObjectInputStream.defaultReadFields(ObjectInputStream.java:2464) at java.base/java.io.ObjectInputStream.readSerialData(ObjectInputStream.java:2358) at java.base/java.io.ObjectInputStream.readOrdinaryObject(ObjectInputStream.java:2196) at java.base/java.io.ObjectInputStream.readObject0(ObjectInputStream.java:1679) at java.base/java.io.ObjectInputStream.defaultReadFields(ObjectInputStream.java:2464) at java.base/java.io.ObjectInputStream.defaultReadObject(ObjectInputStream.java:629) at java.base/java.lang.Throwable.readObject(Throwable.java:896) at java.base/jdk.internal.reflect.GeneratedMethodAccessor38.invoke(Unknown Source) at java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) at java.base/java.lang.reflect.Method.invoke(Method.java:566) at java.base/java.io.ObjectStreamClass.invokeReadObject(ObjectStreamClass.java:1175) at java.base/java.io.ObjectInputStream.readSerialData(ObjectInputStream.java:2325) at java.base/java.io.ObjectInputStream.readOrdinaryObject(ObjectInputStream.java:2196) at java.base/java.io.ObjectInputStream.readObject0(ObjectInputStream.java:1679) at java.base/java.io.ObjectInputStream.defaultReadFields(ObjectInputStream.java:2464) at java.base/java.io.ObjectInputStream.readSerialData(ObjectInputStream.java:2358) at java.base/java.io.ObjectInputStream.readOrdinaryObject(ObjectInputStream.java:2196) at java.base/java.io.ObjectInputStream.readObject0(ObjectInputStream.java:1679) at java.base/java.io.ObjectInputStream.readObject(ObjectInputStream.java:493) at java.base/java.io.ObjectInputStream.readObject(ObjectInputStream.java:451) at java.base/java.util.EnumMap.readObject(EnumMap.java:808) at java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke0(Native Method) at java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) at java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) at java.base/java.lang.reflect.Method.invoke(Method.java:566) at java.base/java.io.ObjectStreamClass.invokeReadObject(ObjectStreamClass.java:1175) at java.base/java.io.ObjectInputStream.readSerialData(ObjectInputStream.java:2325) at java.base/java.io.ObjectInputStream.readOrdinaryObject(ObjectInputStream.java:2196) at java.base/java.io.ObjectInputStream.readObject0(ObjectInputStream.java:1679) at java.base/java.io.ObjectInputStream.defaultReadFields(ObjectInputStream.java:2464) at java.base/java.io.ObjectInputStream.readSerialData(ObjectInputStream.java:2358) at java.base/java.io.ObjectInputStream.readOrdinaryObject(ObjectInputStream.java:2196) at java.base/java.io.ObjectInputStream.readObject0(ObjectInputStream.java:1679) at java.base/java.io.ObjectInputStream.defaultReadFields(ObjectInputStream.java:2464) at java.base/java.io.ObjectInputStream.readSerialData(ObjectInputStream.java:2358) at java.base/java.io.ObjectInputStream.readOrdinaryObject(ObjectInputStream.java:2196) at java.base/java.io.ObjectInputStream.readObject0(ObjectInputStream.java:1679) at java.base/java.io.ObjectInputStream.readObject(ObjectInputStream.java:493) at java.base/java.io.ObjectInputStream.readObject(ObjectInputStream.java:451) at hudson.remoting.UserRequest.deserialize(UserRequest.java:289) at hudson.remoting.UserRequest$NormalResponse.retrieve(UserRequest.java:325) at hudson.remoting.Channel.call(Channel.java:1001) Caused: java.io.IOException: Failed to deserialize response to UserRequest:com.checkmarx.jenkins.CxScanCallable@2c8ef05 at hudson.remoting.Channel.call(Channel.java:1007) at hudson.FilePath.act(FilePath.java:1166) at hudson.FilePath.act(FilePath.java:1155) at com.checkmarx.jenkins.CxScanBuilder.perform(CxScanBuilder.java:902) at jenkins.tasks.SimpleBuildStep.perform(SimpleBuildStep.java:123) at org.jenkinsci.plugins.workflow.steps.CoreStep$Execution.run(CoreStep.java:100) at org.jenkinsci.plugins.workflow.steps.CoreStep$Execution.run(CoreStep.java:70) at org.jenkinsci.plugins.workflow.steps.SynchronousNonBlockingStepExecution.lambda$start$0(SynchronousNonBlockingStepExecution.java:47) at java.base/java.util.concurrent.Executors$RunnableAdapter.call(Executors.java:515) at java.base/java.util.concurrent.FutureTask.run(FutureTask.java:264) at java.base/java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1128) at java.base/java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628) at java.base/java.lang.Thread.run(Thread.java:829)
Matt Henry
added a comment - Hello, I am running into this error, Jenkins 2.303.3 and plugin version 2021.4.1:
java.lang.SecurityException: Rejected: org.apache.http.HttpHost; see https: //jenkins.io/redirect/ class- filter/
at hudson.remoting.ClassFilter.check(ClassFilter.java:79)
at hudson.remoting.MultiClassLoaderSerializer$Input.resolveClass(MultiClassLoaderSerializer.java:133)
at java.base/java.io.ObjectInputStream.readNonProxyDesc(ObjectInputStream.java:1995)
at java.base/java.io.ObjectInputStream.readClassDesc(ObjectInputStream.java:1862)
at java.base/java.io.ObjectInputStream.readOrdinaryObject(ObjectInputStream.java:2169)
at java.base/java.io.ObjectInputStream.readObject0(ObjectInputStream.java:1679)
at java.base/java.io.ObjectInputStream.defaultReadFields(ObjectInputStream.java:2464)
at java.base/java.io.ObjectInputStream.readSerialData(ObjectInputStream.java:2358)
at java.base/java.io.ObjectInputStream.readOrdinaryObject(ObjectInputStream.java:2196)
at java.base/java.io.ObjectInputStream.readObject0(ObjectInputStream.java:1679)
at java.base/java.io.ObjectInputStream.defaultReadFields(ObjectInputStream.java:2464)
at java.base/java.io.ObjectInputStream.defaultReadObject(ObjectInputStream.java:629)
at java.base/java.lang.Throwable.readObject(Throwable.java:896)
at java.base/jdk.internal.reflect.GeneratedMethodAccessor38.invoke(Unknown Source)
at java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.base/java.lang.reflect.Method.invoke(Method.java:566)
at java.base/java.io.ObjectStreamClass.invokeReadObject(ObjectStreamClass.java:1175)
at java.base/java.io.ObjectInputStream.readSerialData(ObjectInputStream.java:2325)
at java.base/java.io.ObjectInputStream.readOrdinaryObject(ObjectInputStream.java:2196)
at java.base/java.io.ObjectInputStream.readObject0(ObjectInputStream.java:1679)
at java.base/java.io.ObjectInputStream.defaultReadFields(ObjectInputStream.java:2464)
at java.base/java.io.ObjectInputStream.readSerialData(ObjectInputStream.java:2358)
at java.base/java.io.ObjectInputStream.readOrdinaryObject(ObjectInputStream.java:2196)
at java.base/java.io.ObjectInputStream.readObject0(ObjectInputStream.java:1679)
at java.base/java.io.ObjectInputStream.readObject(ObjectInputStream.java:493)
at java.base/java.io.ObjectInputStream.readObject(ObjectInputStream.java:451)
at java.base/java.util.EnumMap.readObject(EnumMap.java:808)
at java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)
at java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.base/java.lang.reflect.Method.invoke(Method.java:566)
at java.base/java.io.ObjectStreamClass.invokeReadObject(ObjectStreamClass.java:1175)
at java.base/java.io.ObjectInputStream.readSerialData(ObjectInputStream.java:2325)
at java.base/java.io.ObjectInputStream.readOrdinaryObject(ObjectInputStream.java:2196)
at java.base/java.io.ObjectInputStream.readObject0(ObjectInputStream.java:1679)
at java.base/java.io.ObjectInputStream.defaultReadFields(ObjectInputStream.java:2464)
at java.base/java.io.ObjectInputStream.readSerialData(ObjectInputStream.java:2358)
at java.base/java.io.ObjectInputStream.readOrdinaryObject(ObjectInputStream.java:2196)
at java.base/java.io.ObjectInputStream.readObject0(ObjectInputStream.java:1679)
at java.base/java.io.ObjectInputStream.defaultReadFields(ObjectInputStream.java:2464)
at java.base/java.io.ObjectInputStream.readSerialData(ObjectInputStream.java:2358)
at java.base/java.io.ObjectInputStream.readOrdinaryObject(ObjectInputStream.java:2196)
at java.base/java.io.ObjectInputStream.readObject0(ObjectInputStream.java:1679)
at java.base/java.io.ObjectInputStream.readObject(ObjectInputStream.java:493)
at java.base/java.io.ObjectInputStream.readObject(ObjectInputStream.java:451)
at hudson.remoting.UserRequest.deserialize(UserRequest.java:289)
at hudson.remoting.UserRequest$NormalResponse.retrieve(UserRequest.java:325)
at hudson.remoting.Channel.call(Channel.java:1001)
Caused: java.io.IOException: Failed to deserialize response to UserRequest:com.checkmarx.jenkins.CxScanCallable@2c8ef05
at hudson.remoting.Channel.call(Channel.java:1007)
at hudson.FilePath.act(FilePath.java:1166)
at hudson.FilePath.act(FilePath.java:1155)
at com.checkmarx.jenkins.CxScanBuilder.perform(CxScanBuilder.java:902)
at jenkins.tasks.SimpleBuildStep.perform(SimpleBuildStep.java:123)
at org.jenkinsci.plugins.workflow.steps.CoreStep$Execution.run(CoreStep.java:100)
at org.jenkinsci.plugins.workflow.steps.CoreStep$Execution.run(CoreStep.java:70)
at org.jenkinsci.plugins.workflow.steps.SynchronousNonBlockingStepExecution.lambda$start$0(SynchronousNonBlockingStepExecution.java:47)
at java.base/java.util.concurrent.Executors$RunnableAdapter.call(Executors.java:515)
at java.base/java.util.concurrent.FutureTask.run(FutureTask.java:264)
at java.base/java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1128)
at java.base/java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628)
at java.base/java.lang. Thread .run( Thread .java:829)
Problem has been fixed.
A new version 8.90.3 was uploaded to the Jenkins Update Center
Our apologies and thank you for sharing this issue,
Checkmarx Product Manager